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(57) The present invention provides systems and 
methods for electronically delivering banking services 
to end clients and, more particularly, using Internet 
based technologies as a means of exposing those serv- 
ices. The solution to this problem set forth in this inven- 
tion is the creation of a common electronic delivery in- 
frastructure and application deployment environment, 
exposing an institution's entire portfolio of corporate 
banking services to its clients at a number of different 
locations at any time. 
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Description 

[0001] This application claims the benefit of U.S. Pro- 
visional Application No. 60/081 ,965, titled 'CUSTOMER 
ACCESS SOLUTIONS ARCHITECTURE", which was 
filed April 16, 1998. 

FIELD OF THE INVENTION 

[0002] This invention relates to the field of banking 
services and, in particular, the field of electronic banking 
services delivery within the corporate banking arena. 
More particularly, this invention comprises an electronic 
delivery infrastructure and applications deployment en- 
vironment supporting direct end-customer personal 
computer (PC) access to the full range of corporate 
banking services. The infrastructure may be accessed 
either directly over a network, such as the Internet, via 
extranet direct dial-in or via other private network access 
methods using standard internet technologies. 

BACKGROUND 

[0003] International businesses involved in global op- 
erations need electronic access to financial services. 
Their reasons include operational imperatives to have 
instantaneous access to consolidated information, the 
global nature of the world's economies, the inter-de- 
pendencies between products and services in one re- 
gion and another, and the price competitiveness be- 
tween global entities, the sheer growth and trajectory of 
information capabilities makes electronic global access 
to services an axiom. Today's international businesses 
clearly understand that they have a need to not only be 
"globally present' but also "globally aware." For institu- 
tions, such as international money-center banks, whose 
business it is to deliver global corporate banking serv- 
ices, effective and efficient electronic delivery is core to 
their existence. 

[0004] Developing an effective and efficient electronic 
delivery of corporate banking services has been a chal- 
lenge for the industry. From 1975 to 1998, there have 
been several efforts at developing electronic banking 
services. Most have been either single product in orien- 
tation, single region, and limiting in the technology's abil- 
ity to meet even basic needs. In the mid 1970s to the 
early 1 980s, many of the systems were based upon the 
concept of terminal emulation. In the middle 1 980s disk 
operating system (DOS) workstations became popular, 
then in the latter 1980s to early 1990s, the technology 
further shifted from mainframe central processing unit- 
to-central processing unit (CPU-to-CPU) communica- 
tions to Windows® Workstations with proprietary soft- 
ware loaded on the end-client's machines. All of these, 
while delivering some measure of functionality, fell far 
short of the needs as a platform and infrastructure to 
keep pace with the business needs. What's worse is that 
many of these systems still remain today and incur sub- 



stantial infrastructure, maintenance, and support costs 
associated with their continued use. In addition, tradi- 
tional prior art computer systems have several deficien- 
cies that need to be addressed, including the following; 
5 [0005] Existing computer systems have high operat- 
ing costs. Deployment costs are also extremely high. 
Deployment requires site visits by electronic banking 
teams, and support costs are also high for software in- 
stalled on customer sites - especially for supporting nu- 
10 merous customer, operating environments/local area 
networks (LANs). Software updates often require the 
dispatch of bank technicians to each customer site for 
the installation. Existing systems also typically have in- 
ferior security, including unreliable hardware-based se- 
is curity solutions. Many systems are not compliant with 
the latest corporate security standards. 
[0006] Another problem with the prior art is fragment- 
ed product delivery. Many customers have multiple sys- 
tems in their offices, and each system is specifically fo- 
20 cused on delivery of a single product. Platforms capable 
of integrating across products are rare at best. There 
are also problems with existing systems because they 
require extensive time to market. Time-to-market is key 
to competition, and a one year lead time on new capa- 
zs bilities development is typically needed. The develop- 
ment process requires integration with full release and 
deployment of new services gated by implementation 
capability (2-3 months lead time and growing). 
[0007] Existing systems also have high cost to mar- 
so ket. The current per site cost deployment/support for 
these systems is too high for profitable delivery to new 
market segments, and this is especially true for third- 
world emerging markets. Further, the infrastructures of 
these systems are typically inflexible, and institutions 
35 are unable to deliver new products (e.g., image delivery) 
to customers with existing infrastructures. Another prob- 
lem with existing systems is that they typically only ad- 
dress generic electronic banking services. Large soft- 
ware systems often lack personalization and customi- 
40 zation from the perspective of banking customers, and 
electronic banking services available to each particular 
customer need to be tailored to meet the preference and 
need of each customer. For instance, a small, domestic 
company may use its bank strictly for paying bills, ac- 
45 counts receivable and payroll. The company would not 
have a need for any international transactions and 
would preferably avoid these selections in the interest 
of saving time. 

[0008] There is thus a need for a system and method 
so to overcome the problems of the prior art. 

SUMMARY OF THE INVENTION 

[0009] In order to overcome the problems of the prior 
55 art, as well as other problems, it is an advantage of the 
present invention to provide a system and method for 
electronically delivering banking services to end clients 
and, more particularly, using network, such as Internet 
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based technologies for delivering such services. 
[0010] It is a further advantage of the present inven- 
tion to provide a common electronic delivery infrastruc- 
ture and application deployment environment capable 
of delivering an institution's entire portfolio of corporate 
banking services to its clients at any time. 
[0011] It is a further advantage of the present inven- 
tion to provide an electronic delivery infrastructure and 
applications deployment environment supporting direct 
end-customer personal computer (PC) access to a full 
range of corporate banking services. Such infrastruc- 
ture may be accessed either directly over a network, 
such as the Internet, via extranet direct dial-in or via oth- 
er private network access methods using standard in- 
ternet technologies. 

[0012] It is a further advantage of the present inven- 
tion to provide support for multiple access methods, de- 
pending on customer requirements. 
[0013] It is a further advantage of the present inven- 
tion to provide use of non-proprietary network (e.g., In- 
ternet) enabled devices (e.g., Web browsers) for ac- 
cessing business applications. 

[0014] It is a further advantage of the present inven- 
tion to provide direct commercial integration with cus- 
tomer processes and systems. 

[001 5] It is a further advantage of the present inven- 
tion to provide global data warehouse for information. 
[0016] It is a further advantage ot the present inven- 
tion to provide software-based security for encryption 
and authentication and hardware-based token cards for 
user access. 

[0017] It is a further advantage of the present inven- 
tion to provide dial-up or through client networks 
[0018] It is yet a further advantage of the present in- 
vention to provide a system and method for transferring 
data from a remote data entry device, such as that con- 
tained in a cellular telephone or a portable computer 
equipped with a modem, to a receiving station capable 
of receiving the data transmitted from the remote data 
entry device via cellular network, satellite, or other wire- 
less communication systems. Data transfer from the re- 
ceiving station to the remote data entry device is also 
contemplated. 

[0019] It is a further advantage of the present inven- 
tion to provide a system and method for remote and port- 
able command transmission to a receiving station that 
is capable of performing tasks in response to data and 
commands transmitted from a remote data entry device. 
[0020] It is a further advantage of the present inven- 
tion to provide an apparatus capable of carrying out the 
methods of the present invention. It is a further advan- 
tage for the apparatus to include a data entry device ca- 
pable of transmitting via a cellular network, satellite, or 
other wireless communication systems, and the data 
entry device to include capability for encrypting data or 
commands entered on the data entry device and capa- 
ble of transmitting signals that may be received and de- 
crypted by the receiving station into commands capable 



of being performed by the receiving station. 
[0021] In accordance with the present invention there 
is provided a system and method for an electronic de- 
livery of infrastructure and applications deployment en- 
5 vironment that provides efficient means for delivering an 
institution's portfolio of corporate banking services to its 
clients at anytime. This invention is useful for example, 
for banking services and, in particular, the field of elec- 
tronic banking services delivery within the corporate 
10 banking arena. The invention includes features that re- 
solve issues presented by prior technology solutions, in- 
cluding the following. The present invention lowers op- 
erating costs and improves quality. The invention re- 
quires no client visits to install and/or upgrade software, 
*5 and client-side support is eliminated. The invention im- 
proves time and cost to market, as well as facilitates cli- 
ent acquisition. The invention is network centric and 
therefore facilitates rapid product development, as well 
as system introduction. The structure of the architecture 
20 also eliminates the need for release dependencies. 
[0022] The invention increases security and reliability, 
applying both software and hardware based security. 
The invention also provides users with personalization 
and customization of services and features available on 
2S the system software for consistent took and feel and us- 
er-friendly electronic banking services. The invention al- 
so improves competitive positioning by providing a sin- 
gle platform for integrated delivery. 
[0023] The present invention thus provides a method 
30 and system for electronically delivering banking servic- 
es to end clients and, more particularly, using network, 
such as Internet, based technologies for delivering such 
services. In particular, the invention relates to a method 
and system that includes a common electronic delivery 
35 infrastructure and application deployment environment 
capable of delivering an institution's entire portfolio of 
corporate banking services to its clients at any time. 
[0024] To achieve the stated and other objects of the 
present invention, as embodied and described below, 
40 the invention includes a method for providing services 
over a network from a host to an access location, com- 
prising: providing a plurality of services, the plurality of 
services accessible by the host; receiving a request for 
access to the plurality of services from the access loca- 
ls tion via the network; and installing a local access appli- 
cation at the access location; wherein the plurality of 
services are accessible at the access location via the 
local access application and via the host. 
[0025] To achieve the stated and other objects of the 
50 present invention, as embodied and described below, 
the invention includes a system for providing services 
over a network, comprising: a host server coupled to the 
network; a processor accessible by the server, the proc- 
essor providing a plurality of services; an access pre- 
ss gram operable over the network; and a local access lo- 
cation coupled to the network; wherein the plurality of 
services are accessible at the access location via the 
local access application and via the host. The system 
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may include an infrastructure that comprises: directory 
of business services and solution packaging, custom 
menu creator, inbox, user and client preferences, flow 
control and entitlements, reusable user interface com- 
ponents, local client persistence, business service inter- s 
face, common reference data, context-sensitive help, 
transaction monitor, security features, error handling, 
scalability and load balancing model, and system met- 
rics and monitoring. 

[0026] Additionally, capabilities that are provided by w 
the method and system of the present invention may in- 
clude, not exclusively, payments, netting, and reporting. 
The payments capability can provide connectivity by 
MCP or branches, and it can provide support for pay- 
ment funding, auto-funding via OLR, spot contracts. Ad- is 
ditionally, the payments capability allows a single point 
of entry for all payments and may include such instru- 
ments as global funds transfers, book transfers, paylink 
check, paylink GIRO, worldlink factory. It also allows 
multiple input modes, such as detail entry of information 20 
or quick entry via predefined parameters set up by the 
method or system user, which includes both the host in- 
stitution and its customers. 

[0027] The netting capability may provide: transaction 
initiation with multiple instruments and multiple entry 25 
modes, netting processes such as run netting and gen- 
erating payments, linkage to payments service, integra- 
tion with no-CASA delivery protocols. 
[0028] The reporting capability may include: reporting 
framework, payments reports derived on the payments 30 
capability, netting reports derived from the netting capa- 
bility, balance and transaction reports, and inquiries 
about balance and transaction, trade, foreign exchange, 
investments, etc. 

[0029] Additional objects, advantages and novel fea- 35 
tures of the invention will be set forth in part in the de- 
scription that follows, and in part will become more ap- 
parent to those skilled in that upon examination of the 
following; these features may also be learned by prac- 
tice of the invention. 40 

BRIEF DESCRIPTION OF THE FIGURES 

[0030] In the figures: 

45 

Figure 1 shows a general overview of possible serv- 
ices that a host institution can offer to its customers 
through the CASA system; 

Figure 2 shows a high-level view of the basic com- 
ponents of the CASA system in accordance with an so 
embodiment of the present invention; 
Figure 3 shows a standard user navigation menu 
for the CASA system in accordance to an embodi- 
ment of the present invention; 

Figure 4 also shows the user navigation menu and ss 
incorporates detailed services available to the user 
in accordance to an embodiment of the present in- 
vention; 



Figure 5 shows a schematic diagram of the CASA 
system and incorporates the business services in- 
terface, thereby demonstrating the roles and func- 
tions played by the business services interlace in 
the system; 

Figure 6 shows an overview of the CASA system 
and also incorporates the business services inter- 
face; 

Figure 7 shows a reporting framework and its func- 
tions via a flow chad. 

Figure 8 shows the dynamic reporting facility and 
its functions within the reporting framework via a 
flow chart; 

Figures 9a-b show the deployment model and its 
reporting subsystem in accordance to an embodi- 
ment of the present invention; 
Figure 10 shows a diagram of the CASA inbox and 
its capabilities; 

Figure 11 shows an example of the graphical user 
interface representing the CASA inbox; 
Figure 12 shows the file import/export functions 
within the application utilities in the CASA system 
in accordance to an embodiment of the present in- 
vention; 

Figure 1 3 shows a system functional view of the CA- 
SA comprehensive infrastructure in Figure 2; 
Figure 1 4a shows a high-level view of the basic CA- 
SA architectural constructs of an embodiment of the 
present invention; 

Figure 14b shows a detailed view of the CASA ar- 
chitectural constructs of Figure 14a; 
Figure 14c shows a technical architecture of the 
business services interface and the data access 
layer of the CASA system shown in Figure 14b; 
Figure 15 shows the organization of activation on 
CASA in accordance to an embodiment of the 
present invention; 

Figure 16 shows a diagram representing the activa- 
tion process flow in accordance the organization of 
activation in Figure 15; 

Figure 1 7 shows the various layers of customization 
possible in the CASA system; 
Figures 18a-h shows a CASA graphical user inter- 
face in the form of various custom menus in win- 
dows format; 

Figure 1 9 shows various means a client can access 
the CASA system in accordance to one embodi- 
ment of the present invention. 

DETAILED DESCRIPTION 

[0031] The present invention relates to a customer ac- 
cess solutions architecture (CASA) system for electron- 
ic banking services that is achieved through the integra- 
tion of a comprehensive infrastructure and a series of 
applications. The infrastructure provides flexibility to the 
CASA system for future application upgrades and add- 
ons; thus, it comprises architectural components or 
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frameworks to which modifications can be made to the 
system without the need to redesign the entire system- 
Figure 1 shows a general relational overview of some 
of the services that a host institution can offer to its cus- 
tomers through the CASA system. 
[0032] An embodiment of the present invention may 
be illustrated by overviewing example installation and 
uses by a customer, as will now be described. An em- 
bodiment of the present invention includes customer 
software on the customer (client) machine that has been 
made resident using, for example, an applet, such as a 
Java program. In one embodiment, the resident soft- 
ware for the customer is installed using specialized soft- 
ware on a client machine that synchronizes automati- 
cally with the host system. In this embodiment, when the 
customer connects, for example, via a network such as 
the internet, the host machine, such as a server, recog- 
nizes the identity of the customer after performing se- 
curity checks. 

[0033] The host system then determines at the start 
of each customer or client session, among other things, 
what version of the software is resident to the client and 
what objects the customer prefers on their machine. The 
host system then determines whether any software 
needs to be updated. Updating can occur, for example, 
if the host institution decides to upgrade software and 
provide new functionality. To perform this upgrade, the 
host system may further determine, for example, wheth- 
er the customer already has sufficient local capability to 
take advantage of that functionality or whether the cus- 
tomer must be provided with additional software or other 
capabilities to enhance the customer's ability to take ad- 
vantage of any new functionality contained in the up- 
date. 

[0034] In an embodiment of the present invention, 
such updating and other functions performed using the 
synchronized software are transparent to the customer 
and are completed automatically. This automatically 
synchronizing aspect of the present invention provides 
an improvement over the prior art updating, such as up- 
dating that involves customer by customer site-specific 
visits and updates, in that, with the present invention, 
new software may be developed and implemented at all 
customer locations immediately, even if there are, for 
example, 150 : 000 customers. Thus, for example, the 
host institution can immediately market a new product 
to customers without having to physically go to the cus- 
tomer and install new software. Further, this feature of 
the present invention provides the advantage that the 
time to market — in terms of the time from conception of 
a product to the product being designed, built, tested, 
and then turned over to the customer — is reduced be- 
cause the difficulties associated with installation and 
training are removed or greatly reduced. 
[0035] According to an embodiment of the present in- 
vention, the host functions and applications to which the 
customer is entitled, as well as particular features to 
which the customer is dynamically entitled, are also con- 



tinually maintained on a customer-specific basis. As a 
result, the system automatically ensures, for example, 
that the customer doesn't receive information or up- 
dates the customer is not entitled to have. Because this 
5 feature is simple to update, functions and applications 
to which the customer is entitled can be dynamically 
changed, such as when negotiated with the sales or 
marketing branch of the host institution. 
[0036] For use with the present invention, a CASA 
10 customer is represented by a client entity, which is an 
organization of an account group, a service group, and 
users. The client entity is identified by a client entity 
name, description, and a unique identifier. The client en- 
tity account access rights are defined by the account 
*5 group, and the client entity service access rights are de- 
fined by the service group, which is defined by the so- 
lution packages and other individual services assigned 
to the client entity. Additionally, the client entity is ena- 
bled to create users organized into entitlement groups, 

20 which are granted certain access privileges to the ac- 
counts and services belonging to the client entity. Thus, 
to the users, the service group is a combined superset 
of all services to which the users may be entitled. For 
example, if the CASA customer is a company which has 

25 different departments and a number of employees with- 
in each department, each department or even each em- 
ployee within each department could be designated as 
a user and provided with entitlement to different func- 
tions and applications. According to one embodiment of 

30 the present invention, the functions and applications to 
which users are entitled are services in the solution 
packages that are assigned to the client entity. In this 
embodiment, the number of solution packages that may 
be provided to a client entity or customer varies as these 

25 solutions packages are developed and made available 
by the host institution. 

[0037] According to an embodiment of the present in- 
vention, other applications used by the client entity or 
customer that are external to the present invention may 
40 also be integrated with the system of the present inven- 
tion. For example, if the customer has standard software 
that the customer uses for general ledger processing 
and other functions, such as payroll, the present inven- 
tion provides a capability to interface that standard Sott- 
as ware with the business solutions of the present inven- 
tion. This interfacing is initially provided on a customer 
and software specific basis and may be updated or other 
interaction may occur in a similar manner to how system 
software updates occur. According to an embodiment of 
50 the present invention, the interfacing may include trans- 
lating, such as converting data from one format to an- 
other format. This translating may occur, for example, 
using third party translation software. 
[0038] According to an embodiment of the present in- 
55 vention, the customer interface for the present invention 
includes the capability for the customer to select param- 
eters and preferences to allow the customer to custom- 
ize, for example, the desktop that provides the user in- 
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terface to the host system. For example, business ap- 
plications provided to the customer may be listed in a 
menu, and the customer may rename the menu items 
to names with which the customer is more comfortable. 
The customer may also, for example, place the menu 
items into folders and name those folders at their own 
convenience. 

[0039] Further, the customer may, for example, cus- 
tomize the menu based on any criterion supported, such 
as time of the week. Thus, for example, the customer 
may create a Monday folder and have applications that 
are applicable for Monday operations, have a Tuesday 
folder and have applications that are applicable to Tues- 
day operations - and the customer may name those ap- 
plications differently for personal convenience so that 
the desktop will look slightly different for the customer 
on each day. The customer could then, for example, 
have a reset button that allows the customer to switch 
from the customer-specific name for a function and how 
it was organized back to a standard name and organi- 
zation. The functions still work the same, but the cus- 
tomer has, for example, the ability to drag and drop. Fur- 
ther, for example, there may be functions to which the 
customer has access, but that the customer never uses 
and that clutters up the menu; the customer can remove 
such functions from being displayed. 
[0040] In an embodiment of the present invention, the 
customer may also select other preferences, such as 
the language in which functions and applications are 
displayed and operate. Thus, for example, a Chinese 
customer may view applications in Chinese, a French 
customer in French, a Russian in Cyrillic, a Malaysian 
in Malay. The present invention provides a preference 
code so that the customer can select to see, for exam- 
ple, the labels, the error messages, and, where possi- 
ble, the data in the preference language is for that cus- 
tomer. 

[0041] An embodiment of the present invention also 
includes security features for both hardware and soft- 
ware that are tailored to the customer. According to one 
embodiment, not only is the physical machine authenti- 
cated, but also the sending customer. This authentica- 
tion is accomplished using, for example, a trust certifi- 
cate, which authenticates both parties (the customer 
and the host institution) mutually and allows both parties 
to identify themselves. Authentication can include a 
password and a physical piece of equipment, such as 
an interface card. 

[0042] In order to accomplish the above described 
functions, as well as other, the architecture of an em- 
bodiment of the present invention is organized into a plu- 
rality of hierarchical levels. One layer of this architecture 
allows for identification of the location of the user ac- 
cessing the system or the location at which a particular 
process is being performed. Once the location has been 
identified, the system can then determine the protocol 
under which such location is operating and communi- 
cate with that location in its own native protocol. Thus, 



exchanges between the remote user and the system are 
relatively error free because both locations operate on 
the same protocol. 

[0043] In addition, the system software is written so 
5 as to accept totally new software. This is possible via 
the system software's standard interface. The system 
has a predefined interface that is used to interact with 
other software systems. By standardizing this interface, 
newly written code at the user level need only be written 
to to exchange data and commands via this interface. This 
prevents the need of rewriting the system software 
whenever a user wants to add new software to a client 
computer. 

[0044] \terious aspects and system components of 

*s the present invention will now be described in conjunc- 
tion with description of the accompanying figures. 
[0045] Figure 2 provides a high-level view of the CA- 
SA comprehensive infrastructure according to one em- 
bodiment of the present invention. The comprehensive 

20 infrastructure comprises the following architectural 
components: an applications framework 10 that sup- 
ports rapid applications development; a session man- 
ager 20 which manages the life-time of a user session; 
a facility called a list manager 30 which manages the 

25 retrieval of generic list data; a facility for providing an 
abstraction between persisted data and the application 
called the data access manager 70; a facility which pro- 
vides an abstraction between product servicing applica- 
tions and the delivery application; in an embodiment of 

30 the present invention, this abstraction is referred to as 
the business services interface 80; a facility for reporting 
called the reporting framework 130; a preference man- 
ager 1 40, which provides support for handling and man- 
aging user preferences; an infrastructure for event han- 

35 dling and performance management 40; robust audit 
logging facilities 50; facility for managing interchanges 
between common system components, which, in an em- 
bodiment of the present invention is referred to as the 
flow control manager 110; a robust security manager 

40 1 00 supporting both hardware and flexible software im- 
plementations; an entitlements manager 90 for control- 
ling user access to sensitive information; a facility for 
packaging and representing products called the busi- 
ness services directory or solutions packaging 150; and 

45 a host of common application utilities 60 including inbox 
support 62, file import/exports 64 and 63 and e-mail 61 . 
[0046] The CASA electronic delivery infrastructure 
and applications deployment environment disclosed 
herein provide for highly efficient and effective means 

50 for exposing an institution's entire portfolio of corporate 
banking services to its clients, anytime, anywhere and 
anyplace. Each of the above components is described 
in greater detail below. 

[0047] Referring to Figure 2, the applications frame- 
55 work is a large portion of the system of an embodiment 
of the present invention. This framework is the core of 
the application in this embodiment and is particularly 
constructed to provide reusable elements that can and 
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should be applied across all applications and products. 
In one embodiment of the present invention, the CASA 
applications framework includes a set of Java programs 
residing on both the client side and the server side that 
work together to simplify the development of CASA ap- s 
plications. The framework handles all the internal 
processing required to send data back and forth be- 
tween client and server and provides a consistent error 
handling model. In an embodiment of the present inven- 
tion, the framework further incorporates such entities as 10 
a navigation shell 11, form objects 12, user interface 
framework 1 3, data connector 1 4. applications object 1 5 
and instruction object 16. 

[0048] The navigation shell 1 1 is, for example, a Java 
applet that occupies the entire client area of the browser is 
and is the place where business applications forms are 
displayed and made available. All application forms are 
implemented as Java applets and/or HTML compo- 
nents, and the navigation shell design specifies that they 
are presented as panels and uniform resource locators 20 
(URLs). The shell is customizable (e.g., selection of so- 
lution packages, dynamic re-sizing of the form area) and 
data driven, and provides an interface for new forms and 
applications to be inserted. 

[0049] In one embodiment, navigation in CASA in- 25 
eludes two basic components — site navigation and ap- 
plication navigation. Site navigation is performed 
through the site menu, which is a standard navigation 
menu implemented by panels and URLs developed 
from the navigation shell 11. Application navigation 30 
takes place in the forms that belong to the application. 
Overall, the CASA navigation is organized as follows: 
the site navigation (menu) includes service categories 
and service classes within the service category, as fil- 
tered by the entitlement management, which will be de- 35 
scribed later; the application navigation includes forms 
for each service class and actions required within the 
forms. Together, the site navigation and the application 
navigation provide a hierarchical structure for the stand- 
ard navigation menu as shown in Figure 3. 40 
[0050] Referring to Figure 3, a client user would first 
have access to the service categories 200 on the menu. 
Each service being offered by an institution to its clients, 
for example, belongs to a single service category, which 
represents the most general definition of its service; for 45 
example: transact, report, etc. There may be one or 
more service categories in a solution package or the di- 
rectory of services that are offered to the clients, based 
on client desires and needs. Each service further be- 
longs to a service class that is found under a service so 
category. Service classes 210 are defined by like proc- 
esses, data, and business purpose, and there may be 
one or more classes per service category. 
[0051] Belonging to each service class are the form 
types 220. They allow data entry to support transaction- ss 
al activity related to that class. Form types are by nature 
similar in that they are used for similar business purpos- 
es, and require the processes associated with their 



class. They can be process form types, which are used 
to support the processing of other forms in the class, or 
data form types, which typically contain similar data. 
Each form type in a class has one or more actual forms 
230 associated with it. This allows for different versions 
of the form type, as may be required by a client's busi- 
ness. Furthermore, within each form there are one or 
more actions 240 to be performed by the client user. 
[0052] Figure 4 shows_a more detailed embodiment 
of the navigation menu in accordance to an embodiment 
of the present invention. The service categories may in- 
clude such options as inbox 202, transact 203, report 
204, utilities 205, and shortcuts 206. Each service cat- 
egory may have its own service classes. For example, 
under the transact service category, there are service 
classes such as payments 212, foreign exchange 214, 
and intra-company or inter-companies netting 216. 
Each service class, in turn, would include process form 
type 222 and data form type 224. The process form type 
typically includes such processing forms as input, mod- 
ify/delete, verify, authorize, and view for processes as- 
sociated with its class. Whereas the data form type typ- 
ically includes form types that contain similar data. What 
distinguishes between the form types here is that they 
typically represent a different method for a similar func- 
tion. For example, under the payments service class, 
there are form types called fund transfers and cheques. 
They are both used to make payments, but they utilize 
different methods (electronic versus paper) and as a re- 
sult, also have slightly different data requirements - 
hence, they are different types of the same thing - a pay- 
ment. 

[0053] Furthermore, for example, under the fund 
transfer form type, there may be two versions of the ac- 
tual form - funds transfer default, and funds transfer in- 
surance industry. The latter version would be used to 
create a funds transfer, but it might use data naming 
conventions that differ from the default funds transfer 
form, or might require industry specific data be captured 
as part of the payment (perhaps through its own sub- 
form). Other specific features of the application frame- 
work in Figure 3 according to an embodiment of the 
present invention will now be described. 
[0054] The form objects 1 2 (Figure 2) are created and 
manipulated by the navigation shell 1 1 to generate the 
necessary application forms in the navigation menu. 
They are thus the entry points into the applications 
framework 10. The data connector 14 represents a 
standard form of passing data from the CASA client to 
the CASA servers. This connector is a network abstrac- 
tion in CASA that handles the secure Hypertext Trans- 
port Protocol (HTTP) connection back to the CASA serv- 
ers, and it is used by the applications framework to send 
requests to server-side application components. 
[0055] The User Interface (Ul) framework 1 3 (Figure 
2) is an extension of the CASA applications framework 
1 0. The Ul framework 1 3 is a form panel that automates 
the transfer of CASA field collections from the CASA 
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field collection fields which collect data for the request- 
ed view from the navigation shell's server components, 
to graphical user interface (GUI) form fields for use by 
the navigation shell 11 to generate the navigation menu. 
In addition to transfer, the Ul framework 1 3 also formal- 5 
izes and standardizes validations on fields, implemen- 
tations model, view, and the controller paradigm that uti- 
lizes the CASA field collection. In essence, the Ul frame- 
work ensures that services can be integrated into may 
solution packaging, that the services share the standard io 
look and feel, and that development risk is minimized by 
establishing library of standard reusable Ul compo- 
nents. 

[0056] The applications object 16 provides the core 
server-side validation and business logic that controls is 
the application. It is accessed by the navigation shell 11 
via the form object 12 to generate an application form 
in the navigation menu. The applications object 16 also 
manages and determines the use of the instruction ob- 
ject 16. It is the key representation of the business case. 20 
The instruction object 16 is an abstract-base subclass 
of the application instructions, which extend the instruc- 
tion class with required business logic for an instruction 
type. The responsibilities of the instruction object 16 in- 
clude interfacing a data access layer (DAL) to provide 2s 
persistence and automatic version ing and version 
checking of transactions based on the application in- 
structions. The data access layer (DAL) provides an ab- 
straction of the physical location and actual names of 
elements in the CASA database. The instruction object 30 
16, via the DAL, interfaces with other components, such 
as the business systems interface (BSI) 80, flow control 
manager 110, audit logging 50, and entitlement services 
90 to process those instructions. Thus, the instruction 
object 1 6 provides for consistent implementation of such 3S 
components and a standard set of instructions such as 
modify, verify, and authorize. Other specific architectural 
components of the CASA infrastructure according to an 
embodiment of the present invention will now be de- 
scribed. 40 
[0057] The session manager 20 manages user ses- 
sions and establishes security protocols for the client 
user. It also manages the life-time of a user session and 
provides the entry point into the Java domain. In an em- 
bodiment of the present invention, the session manager 45 
20 is a C++ component that makes a call into the Java 
session object, which is a COM interface. The List Man- 
ager 30 provides generic access information to be pre- 
sented in a list paradigm and provides a variety of meth- 
ods with which to present information. so 
[0058] The event logging and performance manage- 
ment 40 includes an entire suite of software developed 
to identify and uniformly process error messages. This 
aspect of the invention includes a method by which error 
strings (e.g., text messages) can be mapped to a par- ss 
ticular end-user's language. In an embodiment of the 
present invention, the event logging and performance 
management 40 is comprised of three core functions: 



system audit fog, error logging and notification, and ap- 
plication metrics. The system audit log captures user ac- 
tivities on the system. The users here include both the 
clients and the banking personnel. Error logging and no- 
tification is used for problem notification, tracking, and 
resolution. This function insures that errors are reported 
to the client and recorded in an error log. It also provides 
an error trace facility to support customer problem res- 
olution. Application metrics are statistics about system 
usage that are captured and stored to support various 
system analysis for purposes such as performance 
measurement, usage patterns, and electronic billing. 
Performance measurement is done to determine ease 
of use and system performance. This information is 
used to gauge the intuitiveness of the system interface, 
as well as system execution times. In addition to per- 
formance measurement, the system will also track the 
number of times a user accesses a particular form or 
function. This tracking information is used to identify us- 
ers of particular features for various purposes, such as 
marketing, workflow analysis, design modifications, im- 
pact analysis, etc. Usage statistics may also be used for 
the purpose of customer billing. One such purpose may 
be a determination by the institution of the frequency in 
which CASA services have been used by customers in 
order to charge appropriate user fees. 
[0059] Audit logging 50 is a service that is used uni- 
formly by all applications of the present invention. Every 
event and key stroke is monitored, allowing one the abil- 
ity to develop very customized and personalized appli- 
cations targeted to meet the needs of specific clients. 
The typical audit record contains the complete state of 
the instruction before modification, and it also contains 
the complete state after modification. 
[0060] The data access manager 70 is a generic 
means to abstract the details of the database implemen- 
tation away from the application. In using this tool, 
changes can be made to the database (including replac- 
ing the database with another) and the DAL in a manner 
that can be made transparent to the application. 
[0061] Referring now to Figures 5 and 6, the BSI 302 
provides an abstraction layer between the CASA appli- 
cations and various product application systems (PAS) 
and common servers belonging to the CASA institution. 
In Figure 5, the application layer 300 contains the busi- 
ness and data flow logic implemented by the CASA sys- 
tem. This includes, but not limited, to libraries and in- 
structions objects. The BSI layer 302 encapsulates the 
PAS functionality 304 for the CASA application layer 
300. It exposes a well-known interface that hides the 
physical location and formats of the data and the logic 
that implement functions needed by the application lay- 
er 300 if that function is supplied by a PAS 304. There 
is at least one BSI object for every PAS that CASA is 
connected to. In some cases there may be BSI objects 
which perform a routing function if a particular business 
function is serviced by more than one PAS. 
[0062] As mentioned earlier, the DAL 308 encapsu- 
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lates the physical implementation of the C ASA database 
or data store. It exposes a well-know interface(s) that 
supplies all the necessary persistent data storage func- 
tions within the CASA system. The instructions, libraries 
and other application level objects would then use DAL 
objects to manage persistent data storage in the CASA 
Data Store (CDS) 310 and the CASA Business Systems 
Interface (BSI) objects to access the PAS f unctionality. 
Thus, the BSI provides a consistent interface to all PAS 
and common servers freeing the application instruction 
developer from all the intricacies in dealing with varying 
communication and interface protocols for each PAS 
and common server. 

[0063] The Entitlement management 90 (Figure 2) as- 
pect of the present invention maintains the access con- 
trol lists and permission information for business data 
and business functions. Business instructions use this 
service to determine the set of operations that a user is 
entitled to perform on an instruction in a given state, and 
the standard navigation menu is also filtered accordingly 
by user entitlement. Client users only see those classes 
to which they are entitled, and under a class in the ap- 
plication frame, they can only perform the processes to 
which they are entitled. For example, a user is entitled 
to the payments class and is entitled to perform input 
and authorize for the class. The navigation menu would 
then only show the payments class, and the application 
frame would only allows navigation to input and author- 
izes processing of forms. 

[0064] The security manager 100 incorporates both 
hardware and software components. Components in- 
clude the use of Data Encryption Standard (DES) Gold 
and Smartcard technologies, X.509 Certificates, Web 
Crusader with Entrust, Entrust Server components, 
Firewalls, and specially developed entitlements server 
and the application of the event logging manager. 
[0065] Data encryption in accordance with an embod- 
iment of the present invention may be performed by a 
number of commercially available circuits, which pro- 
vide encryption according to the DES standards referred 
to above. In order to provide encryption capability, in an 
embodiment of the present invention, both the data en- 
try device and the receiving unit include circuitry to allow 
encryption and decryption of the data and command sig- 
nals. 

[0066] The encryption aspects of the present inven- 
tion address a number of problems with the prior an. 
Signal transmissions to remote locations via wireless or 
landline communication methods may be intercepted by 
unauthorized recipients or may activate or interfere with 
devices other than the device for which the instructions 
were intended. In fact, wireless and landline communi- 
cation in general is susceptible to interception and use 
by those other than the intended recipients. Therefore, 
it has been desirable to encrypt or encode wireless com- 
munications. Existing systems typically have employed 
cryptoalgorithms, which operate to encrypt digital data 
into an unintelligible form for transmission over non-se- 



cure communications channels, such as commercial tel- 
ephone lines. In 1977 the U.S. National Bureau of 
Standards published an encryption algorithm, or cryp- 
toalgorithm, which is known as the DES. This cryp- 

s toalgorithm is the U.S. standard for the encryption of 
sensitive unclassified data and is used by federal agen- 
cies for the transmission of sensitive unclassified data, 
and by private companies in applications such as elec- 
tronic funds transfer. The_DES is published in Federal 

10 Information Processing Standards Publication 46 (FIPS 
PUB 46) of the National Technical Information service 
(1977), and in U.S. Pat. Nos. 3,796,830 to Smith and 
3,798,359 to Feistel, which are hereby incorporated by 
reference. 

is [0067] An embodiment of the present invention incor- 
porates use of the DES method of encryption, utilizing 
a data encryption key, which consists of a multi-bit bina- 
ry word, such as the 64 bit word used in the original DES 
standard. The key is used as a variable element in a 
20 publicly known mathematical algorithm that converts 
digital data into an apparently random sequence of bits. 
The same key must be known to both the sender and 
the receiver because the key is required to decrypt the 
encrypted data by the standard DES decryption proce- 
ss dure. Since both the encryption and decryption proce- 
dures are publicly known, the security of the key is cru- 
cial to the effective use of the DES. DES users typically 
change keys at frequent intervals. For example, federal 
agencies using the keys provided by the National Secu- 
30 rity Agency typically change keys on a daily basis. 

[0068] There are now available commercial devices 
which implement the DES encryption/decryption proce- 
dure, which are also compatible with embodiments of 
the present invention. Such devices are in the form of 
35 integrated circuits, which accept as one input the data 
to be encrypted and as another input a key. Additionally, 
the commercially available DES devices typically have 
a capability for receiving the encrypted data as a third 
input in a feedback mode. This is known as cipher feed- 
40 back, and operates to prevent the transmission of repet- 
itive sequences of encrypted data when the data being 
encrypted contains repetitive sequences of identical 
characters. 

[0069] The flow control manager 110 is a common 
45 component of the system which is used by the instruc- 
tion object and library objects to impose a designated 
workflow based upon a set of fields sou reed from an in- 
struction or library object. Flow controls are set at the 
Client Entity level. They are not applied at the Entitle- 
so ment Group or any other level. Therefore : any flows es- 
tablished are always established at, and apply to, a spe- 
cific client entity. As stated earlier, the client entity is an 
organization of an account group, a service group, and 
users. It represents a CASA customer, and it is identified 
55 by a Client Entity Name, Description, and a unique Iden- 
tifier. 

[0070] The reporting framework 1 30 (Figure 2) pro- 
vides client users with a capability to custom select, 
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schedule, and view reports on both ad hoc and recurring 
bases, as shown in Figure 7. The reports need not only 
contain transaction information but may also include 
other information, such as billing information. The re- 
porting framework is both a static and dynamic reporting s 
infrastructure that enables the creation and use of online 
reports. It provides a navigation model to available re- 
ports, enforces the security manager based upon user 
entitlement, enforces low level data entitlement at the 
database for table access, provides scheduling capabil- to 
ities, supports run-time criteria, and supports the inbox 
navigation model. 

[0071] The static reporting support facility uses Crys- 
tal Reports designer to define report layout and gener- 
ate structured query language (SQL). It also uses the *$ 
Crystal Info three tier architecture to support such func- 
tions as scheduling and load balancing. The facility sup- 
ports various data output formats (e.g., HTML, Crystal, 
rpt, CSV), supports various delivery mechanisms (e.g., 
E-mail, MailBox) and can be viewed through a chunking 20 
mechanism for more efficient bandwidth utilization. 
[0072] Referring to Figure 8, the dynamic reporting fa- 
cility allows the full result set of a report query to be de- 
livered to the client. The actual presentation of the result 
set can be handled by client control. The facility allows 2s 
the result set to be passed to other client Java applets 
for charting and other types of graphical reporting 
needs. Finally, the result set can be stored on the client 
file system. 

[0073] The preference manager 140 (Figure 2) pro- 30 
vides a framework for handling user and application 
preferences. New application preference requirements 
are registered with the preference manager, which han- 
dles such functions as the persistence of preferences 
and access. 35 
[0074] The business services directory or solutions 
packaging 150 (Figure 2) is tailored to market opportu- 
nities and allows businesses to dynamically package 
discrete services into customized solutions to meet cli- 
ent needs. This is done through the interactions be- 40 
tween entitlements, BSI, and PAS, and other necessary 
components within the CASA architectural framework 
as described earlier. 

[0075] The deployment/packaging feature 120 (Fig- 
ure 2) takes advantage of the flexibility of the applica- *s 
tions framework 1 0 to deploy updates of the CASA fea- 
tures to the client users via the network. This eliminates 
the costly need to dispatch service personnel to individ- 
ual client sites for the updates. The flexibility of the ap- 
plications framework 1 0 also allows for the packaging so 
of additional applications for the client users should they 
be requested. Again, accessing codes for these addi- 
tional applications may be forwarded to the client user 
via the network without the need for a dispatch of service 
personnel to the client site. Figures 9a-b show the tech- 55 
nical features of the deployment model for remote cli- 
ents, along with the reporting subsystem, that employs 
components of the CASA system. 



[0076] Another major area of the CASA system in ac- 
cordance to an embodiment of the present invention is 
the applications utilities 60 (Figure 2). Each utility is a 
major sub-system in its own right that acts to provide 
common or generic services typically used by applica- 
tions and thought of from an end-user perspective as 
stand-alone integration applications. In an embodiment 
of the present invention, the utilities include a set of Java 
programs that enable developers to build and easily in- 
tegrate business applications on CASA. 
[0077] Several stand-alone common application utili- 
ties are also included as pari of the comprehensive set 
of tools in an embodiment of the present invention. 
These common application utilities include the follow- 
ing. 

[0078] As indicated earlier, the CASA inbox 62 is a 
service category available within the navigation menu. 
Its purpose is to display unsolicited and solicited mes- 
sages or information to CASA client users from a variety 
of sources. The CASA inbox also serves as an alterna- 
tive navigational model that allows the end-user a single 
view of the workspace and a way to view pending work, 
reports that have been run, service messages, and oth- 
er such items. The main function of the CASA inbox is 
to display a consolidated list of jobs or tasks awaiting 
inputs from the user, which allows easy retrieval of in- 
formation from various different sources. Figure 10 
shows a diagram of the CASA inbox and its capabilities. 
[0079] In an embodiment of the present invention, the 
inbox Ul includes a separate popup window that re- 
mains visible even while the user navigates to CASA's 
other applications. An example of the inbox Ul is shown 
in Figure 11 . The window has tab folders on top so that 
user can navigate between status, messages, and ac- 
tion views. The messages view lists and displays all the 
broadcast CASA messages and any messages that the 
user subscribed. Action view lists and displays all the 
items that require user's input to be processed. Where- 
as, status view serves as the user's central depository, 
listing and displaying items from both messages and ac- 
tion views. 

[0080] Figure 1 2 shows another application utility, the 
file import/export functions. File import 64 (Figure 2) pro- 
vides for two types of imports, in-session file import and 
out-of -session file import. In-session file import is sup- 
ported via, for example, a Web browser and delivers in- 
formation over HTTP. Import collaborates with transla- 
tion services, instruction, and libraries within the CASA 
system to provide an efficient mechanism for bulk data 
loads typically originating from another system. File ex- 
port 63 (Figure 2) supports industry standard output for- 
mats to extract customer data out of the invention to feed 
into an end-client proprietary system. 
[0081] E-mail infrastructure 61 (Figure 2) allows client 
services representatives and other personnel to com- 
municate with clients. This feature enables pro-active 
delivery (e g , confirmation of services, market re- 
search) of critical information. The ability to provide help 
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documents and other marketing information is provided 
by an embodiment of the present invention via an ex- 
tensive intra-net self-publishing model (ISPM). 
[0082] Figure 13 shows a system functional view of 
the CASA comprehensive infrastructure of Figure 2 as 
described above. As shown, the customer access plat- 
form interface 500 includes the business services direc- 
tory 150, Ul framework 13, security manager 100, re- 
porting framework 1 30, audit logging manager 50, and 
events and performance manager 40 of Figure 2. This 
platform interface 500 provides customers with access 
to a myriad of services offered by the host institution, 
such as product specific services 510 and cross product 
services 520, by accessing the back-end product proc- 
essors, which include the PAS 540 and data stores 545, 
via the DAL 532 and BSI 540, as described earlier. 
[0083] Referring to Figure 14a, in a true client/server 
nomenclature according to an embodiment of the 
present invention, the system comprises clients which 
request or invoke services and servers that respond to 
invocation or requests. Shown are the client workstation 
components 550, the web server 562, the applications 
server 570, the database server 5B0, the entitlement 
server 585, and reporting servers 587 and 589, as well 
as interfaces 590 to back-end product processors 595, 
which include the PAS and various common reporting 
and operational data stores. This figure also provides 
information with respect to the communications meth- 
ods employed by each component. Figure 14b shows a 
detailed view of the CASA architectural constructs of 
Figure 14a and incorporates examples of components 
that can be used in the CASA system, and Figure 14c 
further shows the technical architectural details of the 
BSI and DAL within the applications server570 of Figure 
14b. As shown in Figure 14c, there is at least one BSI 
object 598 for every PAS 599 that CASA is connected 
to, and the DAL 597 allows the application level objects 
in the application layer 596 to manage persistent data 
storage in CASA data store, which includes the opera- 
tional data store (ODS) and the reporting data store 
(RDS). 

[0084] Activation of a new CASA customer or client 
will now be described in detail with reference to various 
components of the CASA system as described earlier. 
Figure 15 shows a diagram of the organization of acti- 
vation on CASA in accordance to an embodiment of the 
present invention. The activation process 600, which 
can be performed by the host institution or the client, is 
composed of the following functions: a client definition 
function 601 , which is used to define the client, the client 
contacts, security requirements, and enterprise struc- 
ture to CASA; a solution definition function 602, which 
is used to define the services that the client requires, 
and it consists of a solution assist wizard 605 which 
guides the client or host institution through the service 
selection and solution package assignment process 
through a series of questions and answers; a service 
activation function 603, which provides and enables the 



entry of service information through using service defi- 
nition forms, each existing for a service class that is pro- 
vided on CASA, such as payments or intra^company 
netting; a legal activation function 604, which is used to 
5 automatically select the legal documents that are re- 
quired for client activation and entitlements on CASA; 
and the activation reports 614, which are used to provide 
the CASA implementation groups of the host institution 
with the information required to establish the client on 
io the back end processors~595 shown in figures 14a and 
14b. 

[0085] Figure 16 shows the steps in an activation 
process flow according to the above embodiment. In 
step S1 , a client first requests certain services being pro- 
is vided by the host institution and obtains a letter of com- 
mitment from the host sales representative or the CASA 
web site. In step S2, the client signs the letter of com- 
mitment and mails the letter along with relevant client 
information to the host institution. In step S3, once the 

zo letter and client information are received by the host in- 
stitution, the CASA implementation groups, using the 
client definition from the activation menu in the CASA 
system, would complete the client contacts, security in- 
formation, and client enterprise forms on the system. In 

2S step S4, the client is now assigned a client entity I D, user 
ID and password. In step S5, a client profile is now cre- 
ated, identifying client information such as client entity, 
primary contacts, client legal structure and the solution 
packages assigned to the client. A contact database 

30 within the CASA system is also updated with the infor- 
mation entered. 

[0086] In step S6, the host institution distributes to the 
client a software installation package, a testword to au- 
thenticate the client, and the DES/Gold cards and En- 

35 trust Certificates that are required to provide the security 
manager access to CASA or to establish user entitle- 
ment. The installation software can be deployed on a 
storage medium such as CD-ROM or diskettes, or 
downloaded from the CASA web site. The DES Gold 

40 and Entrust libraries in CASA system are updated, and 
the serial numbers of the DES Gold cards that are sent 
to the client are entered into the DES Gold library. This 
provides an audit trail and enables the host institution 
to authenticate the client entity and its users. In step S7, 

4$ once the installation on the client system is complete, 
and the client is authenticated and logged on to the CA- 
SA system, the client, with or without the assistance of 
the host sales representative, selects the solution assist 
wizard 605 (Figure 15) to create and assign the desired 

w solution packages to the client. The solution packages 
are assigned to the client based on the functions select- 
ed. The client profile is then updated. In step S8, service 
definition forms are automatically selected and gener- 
ated by the CASA system based on the information en- 

>5 tered in the solution assist wizard and the solution pack- 
ages assigned to the client One service definition form 
is completed for each of the solution packages assigned 
to the client. The client profile and activation library are 
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then updated. 

[0087] Alternative to steps S7 through S8, the client 
or the host institution can directly select the Service Ac- 
tivation function 603 from the activation menu in Figure 
1 5 to show a listing of service definition forms. The client s 
or the host institution then selects a service definition 
form and enters the information required to complete the 
form. This process is repeated for each service defini- 
tion form that is required to define the f unctions the client 
wishes to perform. Solution packages are then assigned 10 
to the client based on the services selected, and the cli- 
ent profile and activation libraries are updated. In step 
S9, service activation forms are automatically generat- 
ed based on the solution packages assigned to the cli- 
ent, the information found in the service definition forms, is 
and the information contained in the client profile. These 
forms are automatically routed to the respective imple- 
mentation group and/or client for review and authoriza- 
tion. Alternatively, the service activation forms can be 
entered individually by the client via the service activa- 20 
tion function in the activation menu, and they are printed 
and signed by the client and mailed to respective organ- 
ization handling the services within the host institution. 
[0088] In step S10, the respective host organization 
activates the service activation forms once the client re- 25 
views and authorizes the service activation forms. In 
step S11, a set of standard and service specific legal 
documents with regard to the requested services are 
generated and routed to the client, and legal document 
library in the CASA system is updated. The client either 30 
authorizes the legal documents or requests modifica- 
tions. If modifications are requested, an e-mail message 
is sent to the appropriate legal organization within the 
host institution outlining the requested modifications. 
This process is repeated, until both parties reach an 35 
agreement. In step S12, once the client signs and re- 
turns the agreed legal documents. An appropriate host 
organization signs and authorizes the legal documents. 
The documentation database, the legal document data- 
base, and the activation database in the CASA system 40 
are now updated, and in step S1 3 notifications are sent 
to the appropriate host organization to entitle the client 
to the various requested services. According to this em- 
bodiment of the present invention, the client can request 
additional CASA services from the host institution by re- 45 
peating the above steps, starting at step S7. 
[0089] The beneficial features of CASA business 
services according to an embodiment of the present in- 
vention include 1 ) customization, 2) user navigation, 3) 
collaboration, and 4) customer service, each of which is so 
described further below. 

1) With the customization feature, once a client en- 
tity is activated by the CASA system, the client is 
able to customize the default standard navigation ss 
menu by viewing the structure of the available per- 
sonal service group (the Categories, classes, and 
forms to which the client access rights), and then 



applying a custom organization to it. Users within 
each client entity are also provided with customiza- 
tion feature to further customize the modified navi- 
gation menu from the client entity above. The cus- 
tom menu is not required to contain all services to 
which the client entity or a user has access. Rather, 
they are able to switch between their custom menus 
and standard menus. This ensures access to all 
services, regardless of customization. 

The system software of the present invention 
enables customization on various internal and ex- 
ternal levels. Thus, electronic banking services can 
move further toward true, tailored solutions, shaped 
by industry or by customer need. This is best seen 
in Figure 17. The first layer of customization occurs 
at the "services provided to the customer by the 
bank" level. By way of example, if the bank had 
twenty (20) services, one client may only purchase 
ten (10) of the services while another client may pur- 
chase fifteen (15). Thus the first layer of customiza- 
tion occurs at the level of service provided to the 
client by the bank. 

A second level of customization occurs at the 
group level. A large corporation may purchase a 
plurality of services from the bank, but will have a 
plurality of departments which will be specialized. 
An example would be one department that strictly 
deals with domestic transactions. While a transac- 
tion application of the system available from the 
bank will be able to handle both international and 
domestic transactions, the second level of custom- 
ization will limit a purely domestic operation to only 
domestic transactions. Alternatively, having two ap- 
plications for international and domestic transac- 
tions, the group level specialization will restrict the 
domestic department's access to only the domestic 
application and not the international application and 
vice versa. 

Finally, another layer of customization occurs 
at the individual user level. This allows for each em- 
ployee to customize the system for his or her needs. 
For example, employee A deals primarily with only 
a handful of clients. Using a popup window that lists 
all possible clients handled by the client firm would 
be inefficient. The present invention allows the in- 
dividual to select just a few client names from the 
global list and access them as needed. This elimi- 
nates electronically thumbing through many names 
which that particular employee does not use. 
2) User navigation is achieved by the Ul, which in- 
cludes many user-friendly screen features. In one 
embodiment of the present invention, the user is 
first greeted by a welcome screen with language 
choice. For security purpose, the user is next 
prompted for entry of user ID and password to log 
into the user*s account. Upon correct verification of 
the user identity by the system, the user is connect- 
ed to his or her account, and the user can perform 
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with the aid of a mouse any desired and entitled 
banking services on the account via a window- 
based navigation screen or shell that includes a 
navigation menu, an application specific main 
menu, and other popup menus. The overall benefits s 
include efficient and cost effective implementation 
of software updates and new banking services, en- 
hanced customer service, faster development and 
delivery to market of new softwares, use of leading 
edge technologies, improved communication 10 
speeds, and user-friendly windows/mouse environ- 
ment. Furthermore, because the Ul includes the 
above customization feature which allows naviga- 
tion menus to be customized, the system eliminates 
unnecessary information and activity by delivering is 
entitlements that are user-specific. Figures 18a-h 
show examples of some of the possible ways that 
a user can customize a standard navigation menu. 
Figure 18a shows, for example, a standard menu 
for the transact service category, as described ear- 20 
tier with reference to Figures 3 and 4. Figures 18b- 
d show some of the possible modifications of Figure 
18a, and Figures 18e-h show blank menu buttons 
to allow the user to rename menu items to names 
with which the user is more comfortable. It should 25 
be noted that user entitlement to specific features, 
functions, and applications, as authorized by the 
above client entity and the host institution, may also 
affect the how the navigation menu can be custom- 
ized in Figures 18b-h. 30 
3) The system software for collaboration supports 
several types of communication between clients 
and clients and the bank. The communication paths 
can be broken down into three main categories. The 
first can be characterized as an off-line system. This 3S 
is most like an email system. One client sends a 
message to another client or the bank, regardless 
of whether anyone at the receiving institution is on 
line or not, and the message is queued to the recip- 
ient. When the recipient goes on line again, the 40 
message will be there waiting for him or her in the 
recipient's inbox. 

The second messaging system involves public 
comments. The system software supports bulletin 
boards. These bulletin boards may be restricted to 4S 
specific clients or may be available to all clients. 
Generally, the bulletin board allows anyone to post 
comments and read comments posted by others. 

The third type of message is a real time mes- 
sage. This is a message that can be sent to a recip- so 
ient who is on-line at the moment the message is 
sent. This type of message supersedes the other 
processes for a moment on the recipient's terminal 
or PC. In this manner, if the message sender needs 
immediate information, he can request it and get a ss 
response via a similar message in substantial real 
time. One form of real time communication in ac- 
cordance with this embodiment involves a chat 



room. Here, messages are posted publicly for all to 
view and respond to. The correspondence could be 
one-on-one or with multiple participants depending 
on the chat room used. Another form of real time 
communication involves a whiteboard communica- 
tion. Here, an object, say a document or a scanned 
picture, is displayed for ail participants to view. Each 
one may edit the object and view the edits and ad- 
ditions being made by others in substantially real 
time. A further form of real time communication is 
videoconferencing. As broadcasting speed and 
quality improve via the Internet, customers are able 
to contact and see each other online. Customers 
can speak with Customer service representatives, 
managers, colleagues. 

4) The customer service component within CASA is 
geared to enhance a host institution's, such as a 
banking institution's, ability to offer self -directed 
services to its customers. In keeping with the overall 
improved quality objectives of its customer service, 
the CASA component provides customers with an 
alternative option to inquiries and problem resolu- 
tion, allows easy and quick access to information, 
thereby resulting in faster inquiry response, and re- 
sults in fewer customer service calls. 

[0090] In an embodiment of the present invention, 
CASA allows customers to exchange data within their 
internal systems, both proprietary and commercial (e.g. 
Treasury workstations, Portfolio Management Systems, 
Accounting Systems. SAP, Oracle, etc.) 
[0091] Figure 1 9 illustrates the plurality of ways a user 
of services, such as bank services, can access the 
bank's servers that house the CASA system software in 
an embodiment of the preset invention. As illustrated, in 
order to perform banking transactions, the user must ac- 
cess the bank's servers. The user may access the serv- 
ers via a modem and by directly dialing into the servers. 
A firewall exists to provide a level of security to prevent 
unauthorized access. Another method of accessing the 
system is through a corporate network and its direct con- 
nection to the internet via, for example, a T1 line. This 
provides the user with faster access than with a modem 
and still gives the individual user access to other soft- 
ware programs available on the corporate servers. For 
corporations which do not have a T1 line, the corporate 
server can access the bank's servers via a modem and 
the Internet. A further method of connecting the user to 
the bank's servers is via a modem connection to the us- 
er's Internet service provider. The connection is com- 
pleted by accessing the bank's servers via the Internet. 
[0092] Although the invention has been described 
with reference to these preferred embodiments, other 
embodiments can achieve the same results, variations 
and modifications of the present invention will be appar- 
ent to one skilled in the art and the following claims are 
intended to cover all such modifications and equiva- 
lents. 
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Claims 

1 . A method for providing services over a network from 
a host to an access location, comprising: 

providing a plurality of services, the plurality of 
services accessible by the host; 
receiving a request for access to the plurality of 
services from the access location via the net- 
work; and 

installing a local access application at the ac- 
cess location; 

wherein the plurality of services are accessible 
at the access location via the local access ap- 
plication and via the host. 

2. The method of claim 1 , wherein the host comprises 
a server 

3. The method of claim 1 , wherein the plurality of serv- 
ices comprises banking services. 

4. The method of claim 1 , wherein the access location 
comprises a customer. 

5. The method of claim 1 , wherein the host comprises 
a server at a financial institution. 

6. The method of claim 1 , wherein the network com- 
prises the internet. 

7. The method of claim 1, wherein installing the local 
access application comprises running an applet at 
the local access location. 

8. The method of claim 7, wherein installing the local 
access application comprises running the applet at 
the host. 

9. The method of claim 1 , wherein the local access lo- 
cation comprises a terminal. 



access tier of the local access location; and 
providing access for the local access location 
to the at least one service associated with the 
local access location. 

14. The method of claim 13, wherein a plurality of users 
are associated with the local access location, fur- 
ther comprising: 

identifying a user from the plurality of users at 
the local access location; 
identifying a user service access tier associat- 
ed with the user; 

determining at least one service associated 
with the user; and 

providing access for the user to the at least one 
service. 

15. The method of claim 1 , further comprising interfac- 
ing at least one local client application at the local 
access location with the local access application. 

16. The method of claim 15, wherein interfacing com- 
prises translating data from the local access appli- 
cation into a format compatible with at least one 
service. 

17. A system for providing services over a network, 
comprising: 

a host server coupled to the network; 
a processor accessible by the server, the proc- 
essor providing a plurality of services; 
an access program operable over the network; 
and 

a local access location coupled to the network; 
wherein the plurality of services are accessible 
at the access location via the local access ap- 
plication and via the host. 



30 



3S 



10. The method of claim 1 , wherein the local access lo- 
cation comprises a local area network. 

45 

11. The method of claim 1, wherein the local access ap- 
plication includes a user interface. 

12. The method of claim 1, wherein the local access ap- 
plication comprises a plurality of tiers of service ac- so 
cess. 



13. The method of claim 12, further comprising: 

identifying a service access tier associated with ss 
the local access location; 
determining at least one service associated 
with the local access location and the service 
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